CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/01/28 9:17 p.m.•4 views

CVE-2025-55102

A denial-of-service vulnerability exists in the NetX IPv6 component functionality of Eclipse ThreadX NetX Duo. A specially crafted network packet of "Packet Too Big" with more than 15 different source address can lead to denial of service. An attacker can send a malicious packet to trigger this...

OSV•added 2026/01/27 4:16 p.m.•2 views

CVE-2025-55102

8.7CVSS5.8AI score0.00359EPSS

CVE•added 2026/01/27 3:25 p.m.•14 views

CVE-2025-55102

Technical details about CVE-2025-55102 are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories.

Exploits0References1Affected Software1

Vulnrichment•added 2026/01/27 3:25 p.m.•6 views

CVE-2025-55102

Cvelist•added 2026/01/27 3:25 p.m.•20 views

CVE-2025-55102

8.7CVSS0.00359EPSS

EUVD•added 2026/01/27 3:25 p.m.•2 views

EUVD-2025-206403

CNNVD•added 2026/01/27 12:0 a.m.•3 views

Eclipse ThreadX USBX security vulnerabilities

Eclipse ThreadX USBX is an open-source version of Eclipse ThreadX, which includes a USB host, device, and mobile embedded stack. There is a security vulnerability in Eclipse ThreadX USBX, caused by the uxhostclassstoragemediamount function having unlimited recursive depth, which may lead to a sta...

7CVSS5.9AI score0.00138EPSS

Exploits1References2

RedhatCVE•added 2026/01/07 9:9 a.m.•5 views

CVE-2024-2452

In Eclipse ThreadX NetX Duo before 6.4.0, if an attacker can control parameters of portablealignedalloc could cause an integer wrap-around and an allocation smaller than expected. This could cause subsequent heap buffer overflows...

9.8CVSS7AI score0.00902EPSS

RedhatCVE•added 2026/01/07 9:9 a.m.•6 views

CVE-2024-2214

In Eclipse ThreadX before version 6.4.0, the Mtxinit function in the Xtensa port was missing an array size check causing a memory overwrite. The affected file was ports/xtensa/xcc/src/txcliblock.c...

7.8CVSS6.8AI score0.00336EPSS

RedhatCVE•added 2025/10/20 4:29 p.m.•7 views

CVE-2025-55085

In NextX Duo before 6.4.4, in the HTTP client module, the network support code for Eclipse Foundation ThreadX, the parsing of HTTP header fields was missing bounds verification. A crafted server response could cause undefined behavior...

8.8CVSS7.1AI score0.00554EPSS

CNNVD•added 2025/10/20 12:0 a.m.•3 views

Eclipse ThreadX NetX Duo 安全漏洞

Eclipse ThreadX NetX Duo is an IPv4 and IPv6 dual network stack for Eclipse ThreadX open source. A security vulnerability exists in Eclipse ThreadX NetX Duo versions prior to 6.4.4 that stems from a DHCPV6 client not checking the server DUID index in the server reply, which could lead to an...

9.8CVSS6.6AI score0.00364EPSS

Exploits0References2

EUVD•added 2025/10/17 2:22 p.m.•5 views

EUVD-2025-34883

8.8CVSS6.5AI score0.00554EPSS

NVD•added 2025/10/17 6:15 a.m.•4 views

CVE-2025-55094

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxicmpv6validateoptions when handling a packet with ICMP6 options...

7.5CVSS0.00374EPSS

NVD•added 2025/10/17 6:15 a.m.•10 views

CVE-2025-55097

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

6.1CVSS0.00245EPSS

NVD•added 2025/10/17 6:15 a.m.•5 views

CVE-2025-55087

In NextX Duo's snmp addon versions before 6.4.4, a part of the Eclipse Foundation ThreadX, an attacker could cause an out-of-bound read by a crafted SNMPv3 security parameters...

7.5CVSS0.00415EPSS

EUVD•added 2025/10/17 5:32 a.m.•3 views

EUVD-2025-34868

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclasshidreportdescriptorget when parsing a descriptor of an USB HID device...

2.1CVSS6.3AI score0.00152EPSS